on 01-08-2009 11:05 PM
I have configured my EP 7.0 portal to use our corporate LDAP (MS AD) as the UME - which works perfectly!
I want to enable SSL between the UME and LDAP and have followed the steps laid out in the SAP Netweaver help library -
http://help.sap.com/saphelp_nw70/helpdata/EN/7d/77fa735e5f47a2a50b5336fd1b5a61/frameset.htm
I am getting the following errors in the default trace log:
data source is not initialized
Peer certificate is not trusted or expired
no connection to the ldap server
[EXCEPTION]
java.security.PrivilegedActionException: javax.naming.CommunicationException: pmusa.dev:636 [Root exception is iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier]
at java.security.AccessController.doPrivileged(Native Method)
Anyone experienced anything similar?
JB
Ravi,
Thanks again for the response. I guess I did not state in the original post that I have imported the root certificate that was provided to me by the LDAP Administrator. Basically I have followed all of the steps that are outlined in the SAP help for enabling SSL for LDAP.
JB
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Ravi,
Thanks for the response. The Use SSL for LDAP access box is checked and the server port is set to 636 on the LDAP server tab. I verified with my LDAP administrator that the 636 port is enabled for SSL.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
check out whether the Data source is used for User management in LDAP Server tab in UM configuration
and the port for the SSL is 636 by default, select the SSL port, save and restart Java Web AS.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
88 | |
23 | |
11 | |
9 | |
8 | |
5 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.